According to Sophos, the new fake anti-virus imitates as an update from Microsoft security center and tricks the users who are using Mozilla Firefox web browser. Those who have installed this anti-virus software have received an update notification which says "Update your Windows."
When users click "agree," a file called "KB453396-ENU.zip," which has a malicious worm will be downloaded. Users have also received fake mails in the name of Microsoft"s Director of Security Assurance Steve Lipner which makes the update more credible.
"They (the hackers) have spammed out an email containing a worm, which even quotes the real name of a senior member of Microsoft's security team - Steve Lipner - to try to fool you into believing it is genuine," said Graham Cluley, Senior Technology Consultant at Sophos, a report in IBTimes said.
"With so much effort being taken by the cyber criminals to hoodwink unsuspecting computer users, though, you would have thought they would have not made an elementary mistake in their forged email header. The messages we've seen claim to come from email@example.com," Cluley added.